For initial coverage, read this post. Updates: A threat actor, “Twister Canyon,” claims that MCG Health has made false claims about the incident. Their claims can be found in the Comments section under the original post. MCG Health was asked to respond to their claims but have not replied as of this June 14 posting….
Category: Commentaries and Analyses
Kennesaw State researchers highlight gaps in data security considerations for brainwave tech
Thomas Hartwell writes: Kennesaw State University researchers are urging a greater focus on cybersecurity in emerging brainwave technologies, which they say are vulnerable to hacking and breaches of personal data. Brainwave technologies can be used with a wired cap that feeds and decodes information straight into a computer, or wirelessly by wearing sensors on the…
OCR Presents: Recognized Security Practices Video Presentation
The HHS Office for Civil Rights (OCR) is producing a pre-recorded video presentation for HIPAA covered entities and business associates (regulated entities) on “recognized security practices,” as set forth in Public Law 116-321 (Section 13412 of the Health Information Technology for Economic and Clinical Health Act (HITECH). The statute requires OCR to take into consideration…
Choice Health Insurance notifying people after vendor error resulted in a data breach
On June 8, Choice Health Insurance began notifying people of a data breach caused by human error. According to their notification to the California Attorney General’s Office, they learned on May 14 that an unauthorized person was “offering to make available data allegedly taken from Choice Health.” In actuality, on May 9, the data had…
Analysis of the Fourth Circuit’s Opinion in In re Marriott International, Inc.
Gargi Chaudhuri and James Masella, III of Patterson Belknap Webb & Tyler LLP write: On April 21, 2022, the United States Court of Appeals for the Fourth Circuit affirmed the dismissal by the United States District Court for the District of Maryland of allegations that Marriott International had violated federal securities laws by omitting from…
After a Breach, One Company’s Cybersecurity Claims Got Referenced in a Lawsuit
Joe Jabara writes: So it starts….with literally billions of dollars lost through cryptocurrency frauds and security breaches, it was only a matter of time before we started seeing a wave of litigation. On Monday, a case was brought in the United States District Court, Southern District of New York, by IRA Financial Trust against Gemini Trust Company…